Product Security Engineer

Are you passionate about product security testing and vulnerability management? Adobe Product and Software Security is seeking a dynamic candidate with strong security testing expertise to join our expanding team. In this role, you will collaborate with Engineering, Product, and Security teams to coordinate and manage product security testing, handle bug bounty reports, and publish Security Testing Reports to foster trust and transparency with Adobe’s customers. This is an exciting opportunity to contribute to innovative work that will elevate Adobe Security to new heights!

Support the security testing program’s initiatives to ensure comprehensive testing coverage for all products and collaborate closely with engineering and product teams to define scope, schedule, and successfully complete outsourced penetration tests.

Review, verify, and reproduce AI-related penetration testing and bug bounty submissions, including distinguishing genuine AI risks from false positives.

Define AI testing scope for penetration testing and bug bounty programs.

Drive resolution of security issues through ongoing engagement with engineering teams.

Capture all relevant data and results from testing to analyze metrics and enhance the effectiveness of security assessments.

Build Security Testing reports for products to provide transparency into all security testing coverage and results.

Validate, reproduce, and assess the severity of bug bounty reports, and provide support to product teams on existing issues.

Communicate directly with external researchers regarding bug bounty reports on reported vulnerabilities.

Lead initiatives, campaigns, and analytics on vulnerability data and propose initiatives for improvement.

Triage, validate, and retest security vulnerabilities, and offer mentorship for product teams regarding remediation efforts.

Develop dashboards in PowerBI to support data-driven analysis and remediation efforts.

Bachelor’s degree or equivalent experience in Computer Science, Engineering, or a related field, with at least 3-5 years of practical experience.

In-depth knowledge of application security vulnerabilities (OWASP Top 10) and mitigation techniques.

Strong understanding of common security concepts to support root-cause analysis and enable data-driven decisions on vulnerability patterns and trends.

Proficiency with JIRA and PowerBI.

Experience with automation and scripting is highly desirable.

Strong knowledge of LLM (Large Language Model) testing methodologies.

Hands-on experience in penetration testing of AI/ML and LLM-powered products, including chat interfaces, agentic workflows, and inference APIs.

Ability to develop and complete AI-specific test cases.

Familiarity with attacker techniques used by external researchers against LLM systems and generative AI products.

Experience conducting vulnerability assessments and using Burp Suite.

Dependability: Shows dedication, works independently, accepts accountability, adapts to change, sets personal standards, and remains focused under pressure.

Ability to communicate professionally and effectively.

Adobe empowers everyone to create through innovative platforms and tools that unleash creativity, productivity and personalized customer experiences. Adobe’s industry-leading offerings including Adobe Acrobat Studio, Adobe Express, Adobe Firefly, Creative Cloud, Adobe Experience Platform, Adobe Experience Manager, and GenStudio enable people and businesses to turn ideas into impact, powered by AI and driven by human ingenuity.

Our 30,000+ employees worldwide are creating the future and raising the bar as we drive the next decade of growth. We’re on a mission to hire the very best and believe in creating a company culture where all employees are empowered to make an impact. At Adobe, we believe that great ideas can come from anywhere in the organization. The next big idea could be yours. 

At Adobe, we believe in creating a company culture where all employees are empowered to make an impact. Learn more about Adobe life, including our values and culture, focus on people, purpose and community, Adobe for All, comprehensive benefits programs, the stories we tell, the customers we serve, and how you can help us advance our mission of empowering everyone to create.

Adobe is proud to be an Equal Employment Opportunity employer. We do not discriminate based on gender, race or color, ethnicity or national origin, age, disability, religion, sexual orientation, gender identity or expression, veteran status, or any other protected characteristic. Learn more.

Adobe aims to make our Careers website and recruiting process accessible to any and all users. If you have a disability or special need that requires accommodation to navigate our website or complete the application process, email accommodations@adobe.com or call +1 408-536-3015. 

At Adobe, for sales roles starting salaries are expressed as total target compensation (TTC = base + commission), and short-term incentives are in the form of sales commission plans.  Non-sales roles starting salaries are expressed as base salary and short-term incentives are in the form of the Annual Incentive Plan (AIP).

In addition, certain roles may be eligible for long-term incentives in the form of a new hire equity award.

State-Specific Notices:

Adobe will consider qualified applicants with arrest or conviction records for employment in accordance with state and local laws and “fair chance” ordinances.

Colorado:

If this role is open to hiring in Colorado (as listed on the job posting), the application window will remain open until at least the date and time stated above in Pacific Time, in compliance with Colorado pay transparency regulations. If this role does not have Colorado listed as a hiring location, no specific application window applies, and the posting may close at any time based on hiring needs.

Massachusetts:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.